what the HELL IS THIS!!!

  • Thread starter Thread starter kristian
  • Start date Start date
kristian

kristian

New member
This popped on my screen while i was surfing homerecording.com, but it doesn't haven anything to do with the website. I'm hoping for some help with the computer savvy out there. I use mozilla, but i know this sort of windows popup happens with MSIM, which also, i don't use nor is it installed. This is my parent's computer, so something fishy is happening. what the hell is going on#?~~~!!"£
 

Attachments

  • whatthehellisthis2.webp
    whatthehellisthis2.webp
    44.2 KB · Views: 294
LOL! Those pop-up guys sure are clever, aren't they? :rolleyes:

What's really funny is when one of those pops up on my Mac. Like I suddenly switched platforms or something......:p
 
You're sure MSIM isn't installed?

No little greenish blue guy in the bottom right?
 
I had picked up a pop up ad generator from iwon.com (I'm pretty sure), and I didn't pay much attention to it for a while because I thought the pop-ups were coming from websites I was visiting. Then one day as I was checking world news up pops "Increase Your Penis Size By 3 Inches In 3 days!"

What the.....?

I knew that wasn't coming from yahoo.com, so I headed into add/remove programs in my control panel and I know what programs I have so I went down the list and found the generator and removed it. Took care of the problem. You might want to check that out.
 
Emeric - MSIM is definitely not installed. I installed only AIM for my parents a year ago so they can leave messages when I'm at school in the states.

M.Brane - This is defeinitely not a "popup window". This is something different, its something built into windows so you wouldn't be able to have it pop up on your mac. Its some vulnerability which I thought was only possible on PCs with MSIM on them. But clearly not.

Yea it isn't so much a probem that its on my parents computer because I don't want them to see it, it is because they don't install things and/or go to porn sites. Have someone found another clever way to use some vulnerable MS protocol?
 
OH YEA

The IP address on that message was definitely mine at the time. They have a dialup connection but i used http://dslreports.com/whois to get the IP at the time and it was the same as they had on the popup. So that makes me curious as to how they got that info.
 
Kristian,

As Bass Master "K" has done, you'll need to go through your Add/Remove Programs and locate the little nasty and get rid of the pesky blighter.

Also, go into Windows/Cookies and rip out anything and everything that doesn't relate to your legit, oft-visited sites. I personally take out anything that doesn't relate to Home Recording or VSampler Forum. I also leave in a couple of BBs that my kids visit, techno-jungle type music BBs. Everything else, as the TV ads say, "MUST GO!"

Third, go into Windows/Temporary Internet Files and clean it out.

Fourth. Reboot your computer. Not a re-set mind! Shut it down to clear out anything that may be lurking in volatile RAM.

Fifth, surf with care! And don't install any of those software progs proclaiming that they can "Cover Your Tracks". It's BS. Probably spyware itself. NEVER unsubscribe from spam. It simply lets the sender know that yours is a legitimate e-mail addx.

Sixth, and most important of all, get one of those virus scanners that can also block malicious Java scripts. I guess only a true firewall can protect from this sort of crap. In the mean time though, go placidly amid the noise and haste. Someone some where must have a wee prog that notifies you that something is about to happen "behind your back - allow or disallow?" type of thing.

--
BluesMeister
 
I would ad, go grab a copy of Ad-Aware from www.lavasoftusa.com - freeware program that removes adware and spyware from your computer (including cookies).

It's free, easy and it works great. It scans & detects, you tell it to remove what it finds, you're good to go.

And if you are using a p2p service like Morpheus or KaZaa, I recommend doing a search on "cleanclients" and downloading versions with the spyware and ad software hacked out of it.

hope this helps.

- housepig
 
housepig has the good advice here.

I just went through this whole thing on my girlfriends computer about a month ago. Ad-Aware is wonderful for removing that spyware crap! And Kazaa Lite is the only way to go if you are going to use a p2p software for downloading.

Good luck.

Ed
 
That is actually a fairly new exploit of the Windows Messenger Service. If you have Win2K or Windows XP (or even *gasp* NT!), you have a bunch of little services running. The Messenger service is designed to let administrators on your LAN can send the users messages (such as "LAN is going down in 10 minutes, please log-off")

Someone (someone very evil!) wrote a program which is capable of sending these alerts to 1000s and 1000s of (internet) users at once. They first appeared back in August (I think) and the first spam I got was for a University Diploma (no thanks!). I was perplexed because when I got the alert it was in the middle of the night, I had no browsers open, I had ZoneAlarm running, and ZoneAlarm had not logged anything.

The easiest fix is to disable the Messenger service from the Services applet. Do a search on Google using "Windows Messenger Spam" and you'll find out all the details.

I don't believe this has anything to do with Spyware.
 
Thanks eveyone, I was going for a little more of the technical explanation like gordone hit right on. It was bugging me becuase those alerts came out of MSIM at first, now i guess they have busted into Messenger Service somehow. I have win2k, and that service is running, so im going to turn it off.

I've been using Ad-aware for a long time now. No p2p on this computer, IE is not used. So i knew it was something else more sinister.
 
use a firewall also - you would be amazed by the amount of unsolicited traffic a firewall blocks upon startup
 
You must log in or register to reply here.
Back
Top